Phishing Analysis
Detailed analysis of captured phishing page
Visual Capture
Detection Info
https://pratyasha-004.github.io/Netflix_homepageclone
Detected Brand
Netflix
Country
International
Confidence
95%
HTTP Status
200
Report ID
d0dfa8ef-57dā¦
Analyzed
2026-02-17 16:31
Final URL (after redirects)
https://pratyasha-004.github.io/Netflix_homepageclone/
Content Hashes (HTML Similarity)
Used to detect similar phishing pages based on HTML content
| Algorithm | Hash Value |
|---|---|
|
CONTENT
TLSH
|
T1C2C10DA512019E3EA96342E6BB31777A23B69285D786130895FE97781FC4D0DEC3F8C4 |
|
CONTENT
ssdeep
|
96:nOYe1R+AxbGJIiKjj1Thk4939me27J8wzwTwTwr:OY+R+/rKjEu9me2N8wzwTwTwr |
Visual Hashes (Screenshot Similarity)
Used to detect visually similar phishing pages based on screenshots
| Algorithm | Hash Value |
|---|---|
|
VISUAL
pHash
|
9fb1654a84cfb831 |
|
VISUAL
aHash
|
010a8fbd1eb83822 |
|
VISUAL
dHash
|
375a1561a8697256 |
|
VISUAL
wHash
|
032a8fbd3eb8383a |
|
VISUAL
colorHash
|
32608008000 |
|
VISUAL
cropResistant
|
375a1561a8697256 |
Code Analysis
Threat Level
ALTO
ā ļø Phishing Confirmed
š¬ Threat Analysis Report
ā¢ Threat: Phishing
ā¢ Target: Netflix users
ā¢ Method: Impersonation and credential harvesting
ā¢ Exfil: Email address
ā¢ Indicators: Free hosting, brand logo, form.
ā¢ Risk: High
š Risk Score Breakdown
Total Risk Score
90/100
Contributing Factors
Free Hosting
The domain is using free hosting which is a red flag for phishing.
Brand Impersonation
The page is designed to look like the Netflix login page.
Data Harvesting
The page is collecting email addresses.
š¬ Comprehensive Threat Analysis
Threat Type
Netflix Phishing Landing Page
Target
Netflix users (International)
Attack Method
Brand impersonation
Exfiltration Channel
Form submission (backend endpoint not detected - likely JavaScript-based)
Risk Assessment
LOW - Automated credential harvesting with Form submission (backend endpoint not detected - likely JavaScript-based)
š¢ Brand Impersonation Analysis
Impersonated Brand
Netflix
Official Website
https://www.netflix.com/
Fake Service
Netflix Membership
āļø Attack Methodology
Primary Method: Credential Harvesting
The attacker attempts to steal email addresses by creating a fake Netflix login form on a free hosting platform. Victims entering their email would unknowingly provide it to the attacker.
š Infrastructure Indicators of Compromise
Domain Information
Domain
pratyasha-004.github.io
Registered
N/A
Registrar
N/A
Status
Active
š¤ AI-Extracted Threat Intelligence
Similar Websites
Pages with identical visual appearance (based on perceptual hash)
Scan History for pratyasha-004.github.io
Found 3 other scans for this domain
"I Never Thought It Would Happen to Me"
That's what 2.3 million victims say every year. Don't wait to become a statistic.